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Article abstracts with full text online: Globus security model for grid environment | 
Nitin V. Kanaskar, limit Topaloglu, Coskun Bayrak 

November 2005 ACM SIGSOFT Software Engineering Notes, Volume 30 issue 6 
Publisher: ACM Press 

Full text available: || pdf(372.40 KB) Additional Information: full citation , abstract , references , index terms 

Grid technology is increasingly being looked upon as a natural extension of the internet 
for engaging in complex data processing tasks over resources which are distributed across 
the world. Architects and developers- employing grid systems must take into consideration 
security implications. Dynamic generation of virtual organizations leads to a synergistic 
picture which has to address security requirements never encountered before. Globus 
toolkit has devised a framework for making secure use of g ... 

Security procedures e ffe cts on network communicat ion: Password p olic y: the good, 

the bad, and the ugly 

Wayne C. Summers, Edward Bosworth 

January 2004 Proceedings of the winter international synposium on Information and 
communication technologies WISICT '04 

Publisher: Trinity College Dublin 

Full text available: || pdf(73.64 KB) Additional Information: full citation , abstract , r eferences , citings 

"We're secure! We use passwords!" How many of us have heard this claim? Or even - 
"We're secure! We have a password policy!" Using a password or having a password 
policy in today's world of computing is not enough. Passwords provide a first line of 
defense in most cases, but there is much more. "A recent survey by Rainbow 
Technologies Inc. indicates that the use of insecure passwords can be costly — and 
potentially risky -- for corporate data. "[Rosencrance] This paper focuses on the use of 
pa ... 



3 Strong password-only authenticated key exchange' 
David P. Jablon 

October 1996 ACM SIGCOMM Computer Communication Review, volume 26 issue 5 
Publisher: ACM Press 

Full text available: ^g| pdf(1.52 MB ) Additional Information: full citation , abstract , citings , index terms 

A new simple password exponential key exchange method (SPEKE) is described. It 
bejongs to an exclusive class of methods which provide authentication and key 
establishment over an insecure channel using only a small password, without risk of 
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offline dictionary attack. SPEKE and the closely-related Diffie-Hellman Encrypted Key 
Exchange (DH-EKE) are examined in light of both known and new attacks, along with 
sufficient preventive constraints. Although SPEKE and DH-EKE are similar, the constraints 
a ... 

Authentication in office system internetworks 
Jay E. Israel, Theodore A. Linden 

July 1983 ACM Transactions on Information Systems (TOIS), volume l issue 3 
Publisher: ACM Press 

Full text available: fjfl pdf(1.28 MB) Additional Information: full citation , references , index terms 



5 Separating key management from file system security | 
David Mazieres, Michael Kaminsky, M. Frans Kaashoek, Emmett Witchel 
December 1999 ACM SIGOPS Operating Systems Review , Proceedings of the 

seventeenth ACM symposium on Operating systems principles SOSP 

'99, Volume 33 Issue 5 
Publisher: ACM Press 

Full text available* 1sSlpdf (1 77 MB) Additional Information: full citation , abstract , references , citings, index 
. i^j. • terms 

No secure network file system has ever grown to span the Internet. Existing systems all 
lack adequate key management for security at a global scale. Given the diversity of the 
Internet, any particular mechanism a file system employs to manage keys will fail to 
support many types of use. We propose separating key management from file system 
security, letting the world share a single global file system no matter how individuals 
manage keys. We present SFS, a secure file system that avoids internal ... 

Technical p a pers: Grid networks and portals— Evaluatin g g rid portal security | 
David Del Vecchio, Victor Hazlewood, Marty Humphrey 

November 2006 Proceedings of the 2006 ACM/IEEE conference on Supercomputing SC 
'06 

Publisher: ACM Press 

Full text available: m pdf(156.69 KB ), |nformation; fu „ citation , abstract . references 

\9\ ntmi(2.21 KB) 

Grid portals are an increasingly popular mechanism for creating customizable, Web-based 
interfaces to Grid services and resources. Due to the powerful, general-purpose nature of 
Grid technology, the security of any portal or entry point to such resources cannot be 
taken lightly. This is particularly true if the portal is running inside of a trusted perimeter, 
such as a Science Gateway running on an SDSC machine for access to the TeraGrid. To 
evaluate the current state of Grid portal security, we ... 

Technologies for repository interoperation and access control 
Shirley Browne, Jack Dongarra, Jeff Horner, Paul McMahan, Scott Wells 
May 1998 Proceedings of the third ACM conference on Digital libraries DL '98 
Publisher: ACM Press 

Full text available: ^ pdf(1.14 MB) Additional Information: full citation , references , citings , index terms 
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8 A taxonomy of computer program security flaws 

Carl E. Landwehr, Alan R. Bull, John P. McDermott, William S. Choi 
September 1994 ACM Computing Surveys (CSUR), volume 26 issue 3 
Publisher: ACM Press 
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Full text available: ||| pdfl3.81 MB) Additional Information: full citation , abstract , references , citings , index 

terms , review 

An organized record of actual flaws can be useful to computer system designers, 
programmers, analysts, administrators, and users. This survey provides a taxonomy for 
computer program security flaws, with an Appendix that documents 50 actual security 
flaws. These flaws have all been described previously in the open literature, but in widely 
separated places. For those new to the field of computer security, they provide a good 
introduction to the characteristics of security flaws and how they ... 

Keywords: error/defect classification, security flaw, taxonomy 



9 Staying secure in an insecure world: 802. 1x secure wireless computer connectivity j 

for students, faculty, and staff to the campus network 
^ Steven K. Brawn, R. Mark Koan, Kelly Caye 

October 2004 Proceedings of the 32nd annual ACM SIGUCCS conference on User 

services SIGUCCS '04 
Publisher: ACM Press 

Full text available: ^ pdf(398.37 KB ) Additional Information: full citation , abstract , references , index terms 

During this past year, the ASU West IT Department has successfully implemented network 
connectivity throughout the campus for users who desire to use their computers in places 
other than the usual designated office spaces and computer labs. Students and staff alike 
can now access their network file shares, check email, browse the web, and work on 
projects while sitting in the cafeteria, out on the grass, or under the shade of a tree. 

With the constant threat of virus attacks, Trojans, ... 

Keywords: 802. lx, PEAP, VPN, authentication, dynamic WEP, wireless network 



10 Paranoid pen g uin: security features in Red Hat Enterprise 4 
Mick Bauer 

June 2006 Linux Journal, Volume 2006 issue 146 
Publisher: Specialized Systems Consultants, Inc. 

Full text available: g) html(22.03 KB) Additional Information: full citation , abstract , index terms 



11 Security architecture: Sin g le sign-on for j ava web start a p plications usin g myp roxv 
Terry Fleury, Jim Basney, Von Welch 

November 2006 Proceedings of the 3rd ACM workshop on Secure web services SWS 
06 

Publisher: ACM Press 

Full text available: ||| pdf(680.33 KB ) Additional Information: full citation , abstract , references , index terms 

Single sign-on is critical for the usability of distributed systems. While there are several 
authentication mechanisms which support single sign-on (e.g. Kerberos and X.509), it 
may be difficult to modify a particular legacy application to utilize an authentication 
scheme other than username/password. Asimple solution for single sign-on involves 
transmitting a user's password over the network. However, it is undesirable to expose a 
user's private password in an insecure environment. This paper d ... 

Keywords: grid portals, session passwords, single sign-on 
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12 Content-tri gg ered trust ne g otiation 

Adam Hess, Jason Holt, Jared Jacobson, Kent E. Seamons 

August 2004 ACM Transactions on Information and System Security (TISSEC), volume 7 

Issue 3 
Publisher: ACM Press 

_ hi , .. . , a AffQ * c oc izdx Additional Information: full citation , abstract, references , citings, index 
Full text available: |g pdf(815.36 KB) 

The focus of access control in client/server environments is on protecting sensitive server 
resources by determining whether or not a client is authorized to access those resources. 
The set of resources is usually static, and an access control policy associated with each 
resource specifies who is authorized to access the resource. In this article, we turn the 
traditional client/server access control model on its head and address how to protect the 
sensitive content that clients disclose to and r ... 

Keywords: Trust negotiation, access control, authentication, credentials 



13 The architecture of robust publishing systems | 
Marc Waldman, Aviel D. Rubin, Lorrie Faith Cranor 

November 2001 ACM Transactions on Internet Technology (TOIT), volume l issue 2 
Publisher: ACM Press 

Full text available: ||| pdf(680.21 KB) Additional information: full citation .. abstract , references , index terms 

The Internet in its present form does not protect content from censorship. It is 
straightforward to trace any document back to a specific Web server, and usually directly 
to an individual. As we discuss below, there are valid reasons for publishing a document in 
a censorship-resistant manner. Unfortunately, few tools exist that facilitate this form of 
publishing. We describe the architecture of robust systems for publishing content on the 
Web. The discussion is in the context of Publius, as that ... 



Keywords: Censorship resistance, Web publishing 



14 Ap plications and system issues: Securin g user inputs for the web I 
Jan Camenisch, Dieter Sommer, Roger Zimmermann 

November 2006 Proceedings of the second ACM workshop on Digital identity 
management DIM '06 

Publisher: ACM Press 

Full text available: pdf(655.02 KB) Additional Information: full citation , abstract , references, index terms 

The goal of this paper is to study secure and usable methods for providing user input to a 
website. Three principles define security for us: certification, awareness, and privacy. Four 
principles define usability: contextual awareness, semantic awareness, prodigious use of 
screen space, and the availability of recommended choices. We first describe how current 
approaches to the solicitation of user input on the web fail on both fronts: they either can 
not handle certified data, do not resp ... 

Keywords: user interface designs 

15 DRM experience: Digital rights mana g ement in a 3G mobile phone and beyond j 
Thomas S. Messerges, Ezzat A. Dabbish 

October 2003 Proceedings of the 3rd ACM workshop on Digital rights management 
DRM '03 

Publisher: ACM Press 

_ ii . , . . Additional Information: full citation , abstract , references , citing s , index 

Full text available: 
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In this paper we examine how copyright protection of digital items can be securely 
managed in a 3G mobile phone and other devices. First, the basic concepts, strategies, 
and requirements for digital rights management are reviewed. Next, a framework for 
protecting digital content in the embedded environment of a mobile phone is proposed 
and the elements in this system are defined. The means to enforce security in this system 
are described and a novel "Family Domain" approach to content management ... 

Keywords: MPEG-21, copyright protection, cryptography, digital content, digital rights 
management, embedded system, key management, mobile phone, open mobile alliance, 
security 



16 Centralized authentication with Kerberos 5, Part I 
Alf Wachsmann 

February 2005 Linux Journal, volume 2005 issue 130 
Publisher: Specialized Systems Consultants, Inc. 

Full text available: g) html(28.16 KB) Additional Information: full citation , abstract , index terms 

The road to single sign-on begins with a robust authentication server. This series gives 
you a recipe for rolling out the well-tested Kerberos suite. 

17 extreme deployment: distributing and confi g urin g 450 student laptops in five hours 
E. Axel Larsson, Russell Sprague 

October 2004 Proceedings of the 32nd annual ACM SZGUCCS conference on User 
services SIGUCCS '04 

Publisher: ACM Press 

Full text available- IS df(471 82 KB) Add ' tJonal Information: full citation , abstract , references , citings , index 
■ ^AJ • terms 

Drew University has been recognized as a leader in Ubiquitous Computing since 1984, 
with the introduction of our Computer Initiative program, distributing more than 450 
notebook computers to incoming students. 

Drew's first Windows XP implementation did not register student computers into an Active 
Directory domain, instead opting for an unmanaged local account, which caused many 
support issues. By contract, having the computers in the domain would mean that users 
would not need a sepa ... 

Keywords: Microsoft, PHP, XML-RPC, active directory, apache, deployment, imaging, 
ubiquitous computing, windows 



18 On-line e-wallet system with decentralized credential keepers J 
Stig Frode Mjolsnes, Chunming Rong 

February 2003 Mobile Networks and Applications, volume 8 issue i 
Publisher: Kluwer Academic Publishers 

Full text available: ^ pdf(240.23 KB) Additional Information: full citation , abstract , references , index terms 

We propose a generalization of the architecture of an electronic wallet, as first developed 
in the seminal European research project CAFE. With this model you can leave most of the 
content of your electronic wallet at the security of your residential electronic keeper, while 
roaming with your favorite mobile terminals. Emerging mobile handsets with both short 
range Bluetooth and cellular GPRS communications provide a sufficient communication 
platform for this electronic wallet architecture. Howe ... 
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Keywords: digital credentials, e-wallet architecture, mobile commerce, payment 
protocols, privacy 

19 Security through the eyes of users: Hardening Web browsers against man-in-the- 
^ middle and eavesdropping attacks 
^ Haidong Xia, Jose Carlos Brustoloni 

May 2005 Proceedings of the 14th international conference on World Wide Web 
WWW '05 

Publisher: ACM Press 

Full text available: ^ [pdf(770.11 KB) Additional Information: full citation , abstract , references , index terms 

Existing Web browsers handle security errors in a manner that often confuses users. In 
particular, when a user visits a secure site whose certificate the browser cannot verify, . 
the browser typically allows the user to view and install the certificate and connect to the 
site despite the verification failure. However, few users understand the risk of man-in-the- 
middle attacks and the principles behind certificate-based authentication. We propose 
context-sensitive certificate verification (CSCV), w ... 

Keywords: HTTPS, SSL, Web browser, certificate, eavesdropping attack, just-in-time 
instruction, man-in-the-middle attack, password, safe staging, well-in-advance instruction 



20 Technical Session: Supporting ubiquitous computing through directory enabled 

^ technologies 

Michael Richichi, Paul Coen 

October 2001 Proceedings of the 29th annual ACM SIGUCCS conference on User 

services SIGUCCS '01 
Publisher: ACM Press 

Full text available: « pdf(2852ZKB) Additional ,nformation ^ Mdtation, abstract, references, citings, index 
^ terms 

Drew has been providing computers to students since 1984. Many universities have 
ubiquitous computing programs where students receive a laptop computer as part of their 
educational package. These programs reduce the dependence on and management issues 
of traditional computer labs, and allow 24x7 computing access to every student at the 
University. Drew also provides Novell Directory Services (NDS) accounts to all of these 
students, and utilizes Novell ZEN works to customize software, personalize ... 

Keywords: LDAP, ZENworks, directory services, eDirectory, laptop programs, 
management, ubiquitous computing 
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1 Strong password-only authenticated key exchange 
David P. Jablon 

October 1996 ACM SIGCOMM Computer Communication Review, volume 26 issue 5 
Publisher: ACM Press 

Full text available: *g| pdf(1.52 MB) Additional Information: full citation , abstract , citings , index terms 

A new simple password exponential key exchange method (SPEKE) is described. It 
belongs to. an exclusive class of methods which provide authentication and key 
establishment over an insecure channel using only a small password, without risk of 
offline dictionary attack. SPEKE and the closely-related Diffie-Hellman Encrypted Key 
Exchange (DH-EKE) are examined in light of both known and new attacks, along with 
sufficient preventive constraints. Although SPEKE and DH-EKE are similar, the constraints 
a ... 

2 DRM experience: Di g ital ri g hts mana g ement in a 3G mobile phone and beyond 
Thomas S. Messerges, Ezzat A. Dabbish 

October 2003 Proceedings of the 3rd ACM workshop on Digital rights management 
DRM 03 

Publisher: ACM Press 

Additional Information: full citation , abstract , references , citings, index 
terms 



Full text available: H pdf(306.59 KB) 



In this paper we examine how copyright protection of digital items can be securely 
managed in a 3G mobile phone and other devices. First, the basic concepts, strategies, 
and requirements for digital rights management are reviewed. Next, a framework for 
protecting digital content in the embedded environment of a mobile phone is proposed 
and the elements in this system are defined. The means to enforce security in this system 
are described and a novel "Family Domain" approach to content management ... 

Keywords: MPEG-21, copyright protection, cryptography, digital content, digital rights 
management, embedded system, key management, mobile phone, open mobile alliance, 
security 



3 General stora ge protection techniques: Securing distributed stora g e: challenges, 

<^> technigues. and systems 
^ Vishal Kher, Yongdae Kim 

November 2005 Proceedings of the 2005 ACM workshop on Storage security and 



http://portal.acm.org/res^ 4/9/07 



•Results (page 1): ^install ^embedded password credential 



Page 2 of 7 



survivability StorageSS '05 

Publisher: ACM Press 

Full text available: ^ [pdf(294.61 KB) Additional Information: full citation , abstract , references , index terms 

The rapid increase of sensitive data and the growing number of government regulations 
that require longterm data retention and protection have forced enterprises to pay serious 
attention to storage security. In this paper, we discuss important security issues related 
to storage and present a comprehensive survey of the security services provided by the 
existing storage systems. We cover a broad range of the storage security literature, 
present a critical review of the existing solutions, compare ... 

Keywords: authorization, confidentiality, integrity, intrusion detection, privacy 



4 Ap plications and system issues: Securing user inputs for the web 
4^ Jan Camenisch, Dieter Sommer, Roger Zimmermann 

v November 2006 Proceedings of the second ACM workshop on Digital identity 
management DIM '06 

Publisher: ACM Press 

Full text available: ||] pdf(655.02 KB) Additional Information: full citation , abstract , references , index terms 

The goal of this paper is to study secure and usable methods for providing user input to a 
website. Three principles define security for us: certification, awareness, and privacy. Four 
principles define usability: contextual awareness, semantic awareness, prodigious use of 
screen space, and the availability of recommended choices. We first describe how current 
approaches to the solicitation of user input on the web fail on both fronts: they either can 
not handle certified data, do not resp ... 



Keywords: user interface designs 



On-line e-wallet system with decentralized credential kee pers | 
Stig Frode Mj0lsnes, Chunming Rong 

February 2003 Mobile Networks and Applications, volume 8 issue l 
Publisher: Kluwer Academic Publishers 

Full text available: ^ pdf(240.23 KB) Additional Information: full citation , abstract , references , index terms 

We propose a generalization of the architecture of an electronic wallet, as first developed 
in the seminal European research project CAFE. With this model you can leave most of the 
content of your electronic wallet at the security of your residential electronic keeper, while 
roaming with your favorite mobile terminals. Emerging mobile handsets with both short 
range Bluetooth and cellular GPRS communications provide a sufficient communication 
platform for this electronic wallet architecture. Howe ... 

Keywords: digital credentials, e-wallet architecture, mobile commerce, payment 
protocols, privacy 



6 Trust management for IPsec 

May 2002 ACM Transactions on Information and System Security (TISSEC), volume 5 

Issue 2 
Publisher: ACM Press 

Additional Information: full citation , abstract , references , citings, index 
terms , review 

IPsec is the standard suite of protocols for network-layer confidentiality and 
authentication of Internet traffic. The IPsec protocols, however, do not address the 
policies for how protected traffic should be handled at security end points. This article 
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introduces an efficient policy management scheme for IPsec, based on the principles of 
trust management. A compliance check is added to the IPsec architecture that tests 
packet filters proposed when new security associations are created for confo ... 

Keywords: Credentials, IPsec, KeyNote, network security, policy, trust management 



A taxonomy of computer program security flaws 

Carl E. Landwehr, Alan R. Bull, John P. McDermott, William S. Choi 

September 1994 ACM Computing Surveys (CSUR), Volume 26 issue 3 

Publisher: ACM Press 



Full text available: ■ gpdf(3.81 MB) 



Additional Information: full citation , abstract , references , citings , index 
terms , review 



An organized record of actual flaws can be useful to computer system designers, 
programmers, analysts, administrators, and users. This survey provides a taxonomy for 
computer program security flaws, with an Appendix that documents 50 actual security 
flaws. These flaws have all been described previously in the open literature, but in widely 
separated places. For those new to the field of computer security, they provide a good 
introduction to the characteristics of security flaws and how they ... 

Keywords: error/defect classification, security flaw, taxonomy 



The architecture of robust publishing systems 
Marc Waldman, Aviel D. Rubin, Lorrie Faith Cranor 

November 2001 ACM Transactions on Internet Technology (TOIT), volume l issue 2 
Publisher: ACM Press 

Full text available: ^ pdf(680.21 KB) Additional Information: full citation , abstract , references , index terms 

The Internet in its present form does not protect content from censorship. It is 
straightforward to trace any document back to a specific Web server, and usually directly 
to an individual. As we discuss below, there are valid reasons for publishing a document in 
a censorship-resistant manner. Unfortunately, few tools exist that facilitate this form of 
publishing. We describe the architecture of robust systems for publishing content on the 
Web. The discussion is in the context of Publius, as that ... 

Keywords: Censorship resistance, Web publishing 

9 Security through the eyes of users: Hardening Web browsers against man-in-the- 
<^ middle and eavesdroppin g attacks 
^ Haidong Xia, Jose Carlos Brustoloni 

May 2005 Proceedings of the 14th international conference on World Wide Web 

WWW 05 
Publisher: ACM Press 

Full text available: ^| pdf(770.11 KB) Additional Information: full citation , abstract , references , index terms 

Existing Web browsers handle security errors in a manner that often confuses users. In 
particular, when a user visits a secure site whose certificate the browser cannot verify, 
the browser typically allows the user to view and install the certificate and connect to the 
site despite the verification failure. However, few users understand the risk of man-in-the- 
middle attacks and the principles behind certificate-based authentication. We propose 
context-sensitive certificate verification (CSCV), w ... 

Keywords: HTTPS, SSL, Web browser, certificate, eavesdropping attack, just-in-time 
instruction, man-in-the-middle attack, password, safe staging, well-in-advance instruction 
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10 Dynamic Access Control: An access control model for dynamic client-side content Q 
Adam Hess, Kent E. Seamons 

June 2003 Proceedings of the eighth ACM symposium on Access control models and 
technologies SACMAT '03 

Publisher: ACM Press 

Full text available: jg |pdf(608.50 KB) Additional Information: full citation , abstract , references , index term s 



The focus of access control in client/server environments is on protecting sensitive server 
resources by determining whether or not a client is authorized to access those resources. 
The set of resources are usually static, and an access control policy associated with each 
resource specifies who is authorized to access the resource. In this paper, we turn the 
traditional client/server access control model on its head, and address how to protect the 
sensitive content that clients disclose to serve ... 

Keywords: access control, authentication, credentials, trust negotiation 

11 The battle against phishing: Dynamic Security Skins | 
Rachna Dhamija, J. D. Tygar 

July 2005 Proceedings of the 2005 symposium on Usable privacy and security 
SOUPS '05 

Publisher: ACM Press 

Full text available: ^ pdf(398.10 KB) Additional Information: full citation , abstract , references , citings 

Phishing is a model problem for illustrating usability concerns of privacy and security 
because both system designers and attackers battle using user interfaces to guide (or 
misguide) users. We propose a new scheme, Dynamic Security Skins, that allows a remote 
web server to prove its identity in a way that is easy for a human user to verify and hard 
for an attacker to spoof. We describe the design of an extension to the Mozilla Firefox 
browser that implements this scheme. We present two novel inte ... 

1 2 Protecting applications with transient authentication 
Mark D. Corner, Brian D. Noble 

May 2003 Proceedings of the 1st international conference on Mobile systems, 
applications and services MobiSys '03 

Publisher: ACM Press 

Full text available: ^| pdf(294.40 KB) Additional Information: full citation , abstract , references , citings 

How does a machine know who is using it? Current systems authenticate their users 
infrequently, and assume the user's identity does not change. Such persistent 
authentication is inappropriate for mobile and ubiquitous systems, where associations 
between people and devices are fluid and unpredictable. We solve this problem with 
Transient Authentication, in which a small hardware token continuously authenticates the 
user's presence over a short-range, wireless link. We present the fo ... 

13 Content-triggered trust negotiation 
Adam Hess, Jason Holt, Jared Jacobson, Kent E. Seamons 

August 2004 ACM Transactions on Information and System Security (TISSEC), volume 7 

Issue 3 
Publisher: ACM Press 

r- .. * ^ i ui 0 auqa c o C i/nv Additional Information: full citation , abstract , references , citings, index 

Full text available: Ty pdf( 815.36 KB) - 

^ t erms 

The focus of access control in client/server environments is on protecting sensitive server 
resources by determining whether or not a client is authorized to access those resources. 
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The set of resources is usually static, and an access control policy associated with each 
resource specifies who is authorized to access the resource. In this article, we turn the 
traditional client/server access control model on its head and address how to protect the 
sensitive content that clients disclose to and r ... 

Keywords: Trust negotiation, access control, authentication, credentials 



14 Implementing role based access control for federated information systems on the 
web 

Kerry Taylor, James Murty 

January 2003 Proceedings of the Australasian information security workshop 

conference on ACSW frontiers 2003 - Volume 21 ACSW Frontiers '03 

Publisher: Australian Computer Society, Inc. 



Full text available: ^| pdf(217.89 KB) 



Additional Information: full citation , abstract , references , citings , index 
terms 



There is rapidly increasing interest in Australia in on-line sharing of information stored in 
corporate databases, especially within and between staff of independent government 
agencies. Biological collections databases and population health GIS are good examples of 
the frequent situation where database custodians are looking for dynamic, distributed, 
heterogenous federated information system models for information sharing within loosely 
constituted communities. This paper describes a security m ... 

Keywords: RBAC, federated databases 

15 Sta yin g secure in an insecure world: 802. 1x secure wireless computer connectivity | 
for students , facult y, and staff to the campus network 
Steven K. Brawn, R. Mark Koan, Kelly Caye 

October 2004 Proceedings of the 32nd annual ACM SIGUCCS conference on User 
services SIGUCCS '04 

Publisher: ACM Press 

Full text available: |S| pdf(398.37 KB ) Additional Information: full citation , abstract , references , index terms 
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accessing a wide range of different devices. This paper introduces new concepts for user 
authentication in ubiquitous computing, such as the notion of proximity-based user 
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A serious impediment for seamless roaming between independent wireless LANs (WLANs) 
is how best to confederate the various WLAN service providers, each having different trust 
relationships with individuals and each supporting their own authentication schemes which 
may vary from one provider to the next. We have designed and implemented a 
comprehensive single sign-on (SSO) authentication architecture that confederates WLAN 
service providers through trusted identity providers. Users select the app ... 
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As part of the Lancaster GUIDE II project, we have developed a novel wireless access 
point protocol designed to support the development of next generation mobile context- 
aware applications in our local environs. Once deployed, this architecture will allow 
ordinary citizens secure, accountable and convenient access to a set of tailored 
applications including location, multimedia and context based services, and the public 
Internet. Our architecture utilises packet marking and network level packet ... 
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A serious challenge for seamless roaming between independent wireless LANs (WLANs) is 
how best to confederate the various WLAN service providers, each having different trust 
relationships with individuals and each supporting their own authentication schemes, 
which may vary from one provider to the next. We have designed and implemented a 
comprehensive single sign-on (SSO) authentication architecture that confederates WLAN 
service providers through trusted identity providers. Users select the app ... 
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Lenovo - Innovation - Client Security Solution 
The Client Security Software wizard helps simplify installation and 
setup and ... Simplify passwords: The Client Security Password 
Manager replaces multiple ... 

www.pc.ibm.com/us/think/thinkvantagetech/security.html - 32k - 
Cached - Similar pages 

Lenovo - ThinkVantage Technologies - Learn about 
Client Security ... 

The Client Security Software wizard helps simplify 
installation and setup and ... Client Security Solution supports 
the use of a password, a passphrase or a ... 
www.pc.ibm.com/europe/think/en/security.html - 35k - 
Cached - Similar pages 



Sponsored Links 

Manage Embedded Passwords 
Remove the need for embedded and 
hardcoded passwords with eDMZ's PAR 
E-dmzSecurity.com 

Hard-Coded Password SW 
Secure, Manage and Auto-Change 
Thousands of Embedded Passwords! 
www.cyber-ark.com 



Mirek's Free Windows Software * 

The password used for securing access to stored data is not saved anywhere. PINs does 
not require installation and does not need any special dlls, ... 
www.mirekw.com/winfreeware/pins.htmi - 23k - Cac hed - Similar pages 



Catalyst 6500 Series Cisco IPS Software Configuration Guide, 12.1 E ... 
To install and configure Embedded CiscoView, perform the following steps: ... Note The 
default password for accessing the switch web page is the ... 

www.cisco.com/en/US/products/hw/switches/ 

ps708/products_configuration_guide_chapter091 86a008007e6d8.html - 33k - 
Cached - Similar pages 

Cisco Security Advisory: Cisco Unified IP Conference Station and „■ 
Cisco has made free software available to address these issues for affected ... with a 
default password that is used for debugging purposes and is embedded ... 

www.cisco.com/warp/public/707/cisco-sa-20070221-phone.shtml - 38k - 

Cached - Similar pages 
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HP Transaction Analyzer software installation and configuration ... 
Accept the default folder on the Choose Install Folder screen and click next. Accept the 
•default Solid embedded database option on the Select HP Transaction ... 
devresource.hp.com/drc/resources/ovta_3step_1/instcheat.jsp - Similar pages 

andrew ruder :: index 

Password Save 0.(2,3,4,5}, Download Embedded 0.{3,4}, Sidestep, and Subversion 
software. A lot has happened in the last few weeks/months and I haven't had ... 
www.aeruder.net/ - 19k - Cached - Similar pages 

INSTALL file for MADIS (Unix/Linux) MADIS Version 3.2 November 13 ... 
It should show the complete password without the embedded V 6) Disk space 
requirements - The MADIS software requires about 20-30 MB after being built. ... 
www-sdd.fsl.noaa.gov/MADIS/doc/INSTALL.unix - 8k - Cached - Similar pages 
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Windows Password Recovery Software freeware download ... NET CLR v2.0 support; new 
embedded activation system; enhanced user interface responsiveness ... 
www.bestsoftware4download.com/software/k-password-t-free-folder-crypt-download- 
riuyvdeu.html - 72k - Cached - Similar pa ges 

VBA Recovery download - VBA Recovery - VBA password cracker - Best ... 
Windows Password Recovery Software freeware download ... a password recovery tool 
(password cracker) for VBA modules embedded in Word and Excel documents. ... 
www.bestsoftware4download.com/download/t-free-vba-recovery-download-gepzwmcx.html 
- 51k - Cached - Similar pa ges 
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(Jj) O pening a URL with embedded password - 24hoursupport.helpdesk - Feb 28, 2004 
ABEND During Install - novell.support.os.server.netwa ... - Apr 30, 2002 
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RoboForm: Password Manager, Form Filler, Password 
Generator. Fill .., 

Al RoboForm is a one-click web form filler and password manager. ... 
was named PC Magazine Editor's Choice, and CNET Download. corn's 
Software of the Year. ... 

www.roboform.com/ - 20k - Cached - Similar pages 

Password Agent - your password manager program 
(password software ... 

Password Agent - your password manager program (password 
software management security encryption ... so no installation needed to 
use it on other computers. ... 

www.moonsoftware.com/pwagent.asp - 13k - Cached - Similar pages 



Sponsored Links 

End Password Reset Calls 
Web-based password self-service 
from Windows, SharePoint, & OWA 
www.ldentityManagement.com 

Password Mana g ement Tool 
A leading password synch and 
self-sen/ice reset solution. 
psynch.com 



Download - Moon Software 

This program requires the following installation password (case sensitive): 
FreeStufflsCool! Bookmark Wizard 2.0.1, free! BookmarkJMzard_201.exe (401 KB, 
www.moonsoftware.com/download.asp - 8k - Cached - Similar p ages 
[ More results from www.moonsoftware.com ] 

Software Installation Quick Assist 

If someone set up your computer for you and your own username and password aren't 

allowing you to install software, consult that person for assistance. ... 

docs. info. applexom/article.html?artnum=303601 - 28k - Cached - Similar pages 



[doc] OnCall Software Installation - Calendar Year 

File Format: Microsoft Word - View as HTML 

You will use this password only when you initially download the software or when 
will receive the installation password when you purchase OnCall. ... 
www.amion.com/lnstallation_Attendings.doc - Similar pages 
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Hack Attack: Safely install software in a virtual layer - Lifehacker 

Include the Software Visualization Admin Tool in your install and finish your installation. ... 

Login with your username and password below. New User? ... 

lifehacker.com/software/installation/hack-attack-safely-install-software-in-a-virtual-layer- 
16291 0.php - 59k - Cached - Similar pages 

Lenovo Support & downloads - ThinkVantage Rescue and Recovery ... 
ThinkVantage Rescue and Recovery - Software installation scenarios. ... of Password 
Manager and Private Disk during the installation of Rescue and Recovery ... 
www-307.ibm.com/pc/support/site.wss/TVAN-RNRINS.html - 51k - Cached - Similar pages 

Cisco Security Advisory: Default Password in Wireless Location ... 
The Cisco Wireless Location Appliance software contains a default password for the 'roof 
administrative account. A user who logs in using this username has ... 
www.cisco.com/en/US/products/products_security_advisory091 86a0080758bae.shtml - 26k 
- Cached - Similar pages 
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A hardcoded username and password pair is present in all software releases for all ... For 
WLSE, users need to install the WLSE-2.x-CSCsa11583-K9.zip patch. ... 
wwwxiscoxom/en/US/products/products_security_advisory09186a008021 19c8.shtml - 26k 
- Cached - Similar pages 

Starting the Tivoli Software Installation Service console 

This password is required only when using Tivoli Software Installation Service to create 

managed nodes, not for other types of installations. Click OK. ... 

publib.boulderjbm.com/tividd/td/framework/GC32-0804-01/en_US/HTML/instguid76.htm - 
7k - Cached - Similar pages 
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